<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Untitled Document</title>

<link href="../css/default.css" rel="stylesheet" type="text/css"/>	
</head>

<body>


<?php 
include_once("../common.php");
//  防止全局变量造成安全隐患 
$admin = false; 
//  启动会话，这步必不可少 
CheckSalerLogon();
?>

<?php
$posts = $_POST; 
//  清除一些空白符号 
foreach ($posts as $key => $value) {
    $posts[$key] = trim($value); 
} 

$userid =  $_SESSION["salerid"];
$newpasswd = $posts["newpasswd"];

if( strlen($newpasswd) < 6 ) 
{
	die("密码长度至少6位！");
}

$DB = DBConnect();
$query = "UPDATE saler SET password='$newpasswd' Where id = '$userid' ";
$result = mysql_query($query);
if($result)
{
	echo "密码已设置！";
	//header("Location:index.php");
}
else
{	
	echo "用户不存在！";
}

?>

</body>
</html>